Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in CS Cart 4.18.3 allows the vendor login functionality lacks essential security controls such as CAPTCHA verification and rate limiting. This allows an attacker to systematically attempt various combinations of usernames and passwords (brute-force attack) to gain unauthorized access to vendor accounts. The absence of any blocking mechanism makes the login endpoint susceptible to automated attacks.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CS Cart 安全漏洞
Vulnerability Description
CS Cart是美国CS Cart公司的一款电商系统。 CS Cart 4.18.3版本存在安全漏洞,该漏洞源于缺乏安全控制措施,可能导致暴力破解攻击。
CVSS Information
N/A
Vulnerability Type
N/A